Jump to content
Posted 27 May 2009 - 02:27 AM
Posted 27 May 2009 - 12:28 PM
Windows security center suggests that a person should surf the net using a standard user account instead of an administrative account.
What do you think about the effectiveness of this suggestion?
Posted 27 May 2009 - 09:26 PM
Posted 28 May 2009 - 01:14 AM
Nice answer Snakes
Posted 28 May 2009 - 07:03 AM
Edited by scff249, 28 May 2009 - 07:03 AM.
"Ototo'i wa usagi o mita no...Kino wa shika...Kyo wa anata." -Kotomi Ichinose (Clannad) [see below for translation]
"Day before yesterday I saw a rabbit, and yesterday a deer, and today, you." -The Dandelion Girl
"You are not alone, and you are not strange. You are you, and everyone has damage. Be the better person." -Katawa Shoujo
Posted 28 May 2009 - 09:37 AM
Even if you keep up to date on patches and virus signatures, enable strong security settings, and are extremely careful with attachments, things happen. Let’s say you’re using your favorite search engine and click on a link that looks promising, but which turns out to be a malicious site hosting a zero-day exploit of a vulnerability in the browser you happen to be using, resulting in execution of arbitrary code. When an exploit runs with admin privileges, its ability to compromise your system is much greater, its ability to do so without detection is much greater, and its ability to attack others on your network is greater than it would be with only User privs. If the exploit happens to be written so that it requires admin privileges (as many do), just running as User stops it dead. But if you’re running as admin, an exploit can:
install kernel-mode rootkits and/or keyloggers (which can be close to impossible to detect)
install and start services
install ActiveX controls, including IE and shell add-ins (common with spyware and adware)
access data belonging to other users
cause code to run whenever anybody else logs on (including capturing passwords entered into the Ctrl-Alt-Del logon dialog)
replace OS and other program files with trojan horses
access LSA Secrets, including other sensitive account information, possibly including account info for domain accounts
cover its tracks in the event log
render your machine unbootable
if your account is an administrator on other computers on the network, the malware gains admin control over those computers as well
and lots more
Posted 29 May 2009 - 03:28 AM
Posted 29 May 2009 - 04:35 AM
Great explanation SnakeOnThePlane , I never thought that using a standard user account had so much advantages!!!
I still have a question though:
When I run Firefox for the first time using a standard user account, I discovered that the so many add-ons and themes that I had installed before were not available for this account so I run Firefox as an administrator, does this make a difference? I mean is it safer to run Firefox using my standard user account or it does not make a difference?
Edited by SnakeOnThePlane, 29 May 2009 - 04:41 AM.
0 members, 0 guests, 0 anonymous users